Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2CE17F54A4FA11F098182C7BDAE4EC9C.roa
File: 2CE17F54A4FA11F098182C7BDAE4EC9C.roa (raw, json)
Hash identifier: W5oE4QPsEHcHNOfL/UlVT5pglD8EiTpR9T5Gt13uAKU=
Subject key identifier: 08:C2:CC:F4:B2:C0:A0:DE:57:D6:91:AF:8E:A5:43:02:4F:E1:33:80
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017FBF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2CE17F54A4FA11F098182C7BDAE4EC9C.roa
Signing time: Thu 09 Oct 2025 10:24:45 +0000
ROA not before: Thu 09 Oct 2025 10:24:41 +0000
ROA not after: Sun 16 Nov 2025 10:24:41 +0000
asID: 22773
IP address blocks: 156.233.243.0/24 maxlen: 24
156.233.244.0/24 maxlen: 24
156.233.245.0/24 maxlen: 24
156.233.246.0/24 maxlen: 24
156.233.247.0/24 maxlen: 24
156.233.248.0/24 maxlen: 24
156.233.249.0/24 maxlen: 24
156.233.250.0/24 maxlen: 24
156.233.251.0/24 maxlen: 24
156.233.252.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98239 (0x17fbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 9 10:24:41 2025 GMT
Not After : Nov 16 10:24:41 2025 GMT
Subject: CN=68e78d6d-53b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:4b:00:17:0e:18:e3:3f:9f:d6:86:d9:3d:f3:
96:98:06:41:6a:e8:dc:36:7e:e5:9b:e0:44:b3:35:
38:72:99:c5:a0:66:04:db:38:95:c0:89:8d:4b:26:
8d:d0:5c:f0:1f:6d:2f:b0:09:a2:d3:eb:91:30:dd:
3e:22:ef:38:01:fe:87:e4:6c:c3:6e:64:6d:af:10:
74:69:05:52:6e:cc:f9:2a:75:da:5f:c6:e2:3d:6c:
9e:2c:3d:23:4f:f4:a7:1a:fa:5c:3f:df:b9:e4:34:
69:a2:2a:bf:d7:26:83:0a:2c:57:9c:4e:d2:91:83:
a5:d9:4c:48:09:a7:56:eb:8a:a9:d7:df:a0:ba:b5:
85:0c:6e:02:26:0c:9c:47:9d:82:50:ba:bc:8b:9f:
33:f4:c6:bc:c7:0c:a5:da:89:d8:2b:aa:6e:3a:96:
a1:82:56:fc:f0:65:da:e3:cb:6b:19:d7:62:87:90:
db:e9:e9:9a:70:8f:cb:02:e0:c8:53:bc:f9:60:6d:
ad:83:4d:a1:36:fa:2e:63:9a:8e:23:bf:a3:92:b5:
7c:22:7e:84:1f:49:56:b2:1e:25:01:a0:13:84:c6:
2a:65:60:d2:db:a0:0d:c3:33:8a:4c:b1:4a:3c:a6:
b9:c3:98:37:1d:cd:d9:57:e1:22:9d:90:c0:63:58:
22:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:C2:CC:F4:B2:C0:A0:DE:57:D6:91:AF:8E:A5:43:02:4F:E1:33:80
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2CE17F54A4FA11F098182C7BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.243.0-156.233.252.255
Signature Algorithm: sha256WithRSAEncryption
94:9a:ee:51:62:2c:ce:38:f1:0c:fe:6f:07:12:44:f3:5e:b7:
58:dc:83:ca:c7:36:6b:d8:14:a5:39:3c:4c:a2:38:ec:f7:2f:
f9:25:d4:ee:f8:f0:43:8a:3e:d8:a7:6a:fb:ab:37:3a:c4:98:
77:60:8a:b4:b6:72:7b:27:2a:2f:a8:6b:5d:bd:92:94:a7:5e:
4c:30:9f:04:2e:90:23:f5:0f:ee:8e:d4:a1:a6:7a:ec:3a:8e:
b8:db:c0:4e:85:3b:b6:a6:5a:15:eb:a6:36:ca:26:14:30:91:
38:41:7d:a7:be:2b:c2:5a:1c:7f:9b:7a:a2:c2:de:57:0e:bb:
c5:16:7d:0b:bc:13:2b:0a:56:3e:27:a1:68:34:a0:8b:d8:d2:
b5:61:ab:39:c9:d3:5b:d3:7f:4a:07:8b:59:ba:65:45:db:e1:
ef:2e:c1:84:45:c2:ac:2f:0e:bf:fe:26:a3:89:ce:93:1a:0a:
18:e8:8b:11:e9:10:c4:af:26:5a:9d:ad:a1:90:d5:61:8d:6f:
ac:8c:0f:b5:da:56:4f:46:d9:26:7c:eb:fd:16:d1:f6:d2:85:
ff:c6:9f:b5:45:cc:ab:97:29:af:07:84:cc:7d:4b:86:28:7f:
7f:d4:17:16:bd:7a:c4:a2:85:c5:c7:8c:58:3d:b9:e5:1a:00:
87:e6:9f:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:50:51 2025 by rpki-client